CyberSec.Space Logo
Back to CVE Browser

CVE-2008-3246

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.1870%
EPSS Percentile18.10th
PublishedJul 21, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Unspecified vulnerability in the PDF distiller component in the BlackBerry Attachment Service in BlackBerry Unite! 1.0 SP1 (1.0.1) before bundle 36 and BlackBerry Enterprise Server 4.1 SP3 (4.1.3) through 4.1 SP5 (4.1.5) allows user-assisted remote attackers to execute arbitrary code via a crafted PDF file attachment.

Affected Platforms (CPE)

πŸ“¦
Blackberry

Enterprise Server

= 4.1
πŸ“¦
Blackberry

Enterprise Server

= 4.1.3
πŸ“¦
Blackberry

Enterprise Server

= 4.1.4
πŸ“¦
Blackberry

Enterprise Server

= 4.1.5
πŸ“¦
Blackberry

Unite

= 1.0
πŸ“¦
Blackberry

Unite

= 1.0.1
πŸ“¦
Rim

Blackberry Enterprise Server

= 4.1.3
πŸ“¦
Rim

Blackberry Enterprise Server

= 4.1.4
πŸ“¦
Rim

Blackberry Enterprise Server

= 4.1.5
πŸ“¦
Rim

Blackberry Enterprise Server For Domino

All versions
πŸ“¦
Rim

Blackberry Enterprise Server For Exchange

All versions
πŸ“¦
Rim

Blackberry Enterprise Server For Novell Groupwise

All versions
πŸ“¦
Rim

Blackberry Unite

= 1.0
πŸ“¦
Rim

Blackberry Unite

= 1.0.1

References & Advisories

πŸ”— http://secunia.com/advisories/31092
πŸ”— http://secunia.com/advisories/31141
πŸ”— http://www.blackberry.com/btsc/articles/635/KB15770_f.SAL_Public.html
πŸ”— http://www.blackberry.com/btsc/articles/660/KB15766_f.SAL_Public.html
πŸ”— http://www.kb.cert.org/vuls/id/289235
πŸ”— http://www.securitytracker.com/id?1020505
πŸ”— http://www.vupen.com/english/advisories/2008/2108/references
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/43840

Related Vulnerabilities

CVE-2000-030810.0

Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and...

CVE-2019-1121010.0

The server component of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition, and TIBCO Spotfire Analytics Platfo...

CVE-1999-085310.0

Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTT...

CVE-2001-043110.0

Vulnerability in iPlanet Web Server Enterprise Edition 4.x.